Privacy Policy

Glyphy is built with privacy as the foundation, not a feature. This policy explains what data we collect (very little), why we need it, and your rights. It is written in plain language because privacy policies should be readable.

The short version: Glyphy does not collect, transmit, store, or sell any personal data. Everything you type, every theme you customize, every shortcut you save, and every encryption key the app generates stays on your device. We have no servers, no analytics SDKs, no third-party trackers.

1. Data we collect

None.

Glyphy does not collect any personally identifiable information. We do not have user accounts, sign-up forms, or login systems. We do not track your keystrokes, your conversations, or your usage patterns. We do not use cookies (the app is not a website). We do not have any analytics SDK (no Firebase, no Mixpanel, no Amplitude, no AppsFlyer, nothing).

2. Data stored on your device

The following information is stored locally on your iPhone, in the app's container and the App Group shared with the keyboard extension. None of it leaves your device:

• Themes: the active theme and any custom themes you create
• Shortcuts: phrases you save for quick paste
• Preferences: font size, keyboard layout, sound on/off, etc.
• Encryption keys: keys generated for the Encryption tool (private keys never leave the device)
• Recent emojis: emojis you've recently selected, for the recents row
• Onboarding state: whether you've completed the initial setup walkthrough

This data is private to you. We have no access to it.

3. Permissions Glyphy requests

Full Access (iOS permission for the keyboard)

iOS requires Full Access for any custom keyboard that uses system features. Glyphy uses Full Access to:

• Read from the clipboard (for the Clipboard tool, only when you tap it)
• Make network calls for the Translator tool (only when you actively translate)
• Geocode coordinates to an address via Apple's CLGeocoder (only when you use the Location tool)
• Persist your preferences across the main app and the keyboard extension via App Groups

Full Access is not a backdoor — it's the iOS system permission required to use any of these features. Glyphy never uses Full Access to read or transmit your keystrokes.

Location (optional)

The Location tool requires permission to access your location. This permission is only requested when you actively use the Location tool. Your coordinates are sent to Apple's CLGeocoder (a system service, not a Glyphy server) to obtain an address. Once obtained, the address is shown only to you and inserted into the chat only if you tap "Insert".

4. Network requests

Glyphy makes network requests only in these specific situations, always initiated by you:

• Translator: when you press the translate button, the source text is sent to a translation API to obtain the translated text. The text is not stored on our side (we don't have a server) — the request goes to the translation provider over HTTPS.
• Location: coordinates are sent to Apple's CLGeocoder system service to obtain an address.
• Subscription verification: Apple's StoreKit framework verifies your subscription receipt directly with Apple's servers. We never see your Apple ID or payment information.

Glyphy does not phone home, ping any analytics endpoint, or send any "anonymous usage statistics".

5. Subscriptions and payments

Glyphy offers a Premium subscription through Apple's StoreKit. All payments are processed by Apple. We do not see, receive, or store your payment information, your Apple ID, your email, or your name. We receive only an opaque receipt that tells us whether your subscription is active.

Subscriptions auto-renew unless cancelled at least 24 hours before the end of the current period. You can manage and cancel your subscription at any time in Settings → [your name] → Subscriptions on your iPhone.

6. Children's privacy

Glyphy is not directed at children under 13. We do not knowingly collect any data from children. Because we do not collect any data at all, this is true by design.

7. Third-party services

Glyphy uses the following third-party services:

• Apple StoreKit for subscription processing (governed by Apple's Privacy Policy)
• Apple CLGeocoder for converting coordinates to addresses (system service, no Glyphy data is sent)
• A translation API for the Translator tool (text you actively translate is sent over HTTPS)

Glyphy does not embed any analytics SDK, advertising SDK, crash reporting SDK, or attribution SDK.

8. Your rights

Under GDPR, CCPA, and similar regulations, you have the right to:

• Access any data we hold about you — answer: we hold none
• Correct any data we hold — N/A
• Delete any data we hold — N/A (deleting the app removes all local data)
• Object to processing — N/A (no processing happens)
• Portability of your data — your themes and shortcuts can be exported from inside the app

If you have any privacy question or concern, write to us at contact@glyphyapp.com.

9. Changes to this policy

If we ever change this policy, we will update the "Last updated" date at the top and post the new version at glyphyapp.com/privacy.html. Material changes will be communicated through the app.

10. Contact

For any privacy question, write to us at contact@glyphyapp.com.

---

Terms of Service · Support · Home